Re: Dynamic username & password in UsernameToken profile

Sat, 24 Aug 2013 16:04:32 -0700 

Thanks Dennis.
I also found out in bottom of http://www.jroller.com/gmazza/entry/cxf_usernametoken_profile , there is mention of how to do this. 

Sam



On 25/08/2013 10:49 a.m., Dennis Sosnoski wrote:

You can set the username and password directly on the service stub you 
use in the client code, like this:


Map ctx = ((BindingProvider)stub).getRequestContext();
ctx.put("ws-security.username", "libuser");
ctx.put("ws-security.password", "books");


See http://www.ibm.com/developerworks/java/library/j-jws13/index.html 
for a full discussion.


  - Dennis

Dennis M. Sosnoski

Java SOA and Web Services Consulting 
<http://www.sosnoski.com/consult.html>
CXF and Web Services Security Training 
<http://www.sosnoski.com/training.html>

Web Services Jump-Start <http://www.sosnoski.com/jumpstart.html>

On 08/25/2013 02:57 AM, Sam wrote:

Hi all,


I got the ws-policy for UsernameToken with X509Token asymmetric 
binding from 
http://pic.dhe.ibm.com/infocenter/radhelp/v9/index.jsp?topic=%2Fcom.ibm.websphere.wlp.nd.multiplatform.doc%2Fae%2Fcwlp_wssec_templates_scenario4.html 
working using
the sample code for 
http://www.jroller.com/gmazza/entry/cxf_x509_profile with minor 
modifications.


Basically, after modifying wsdl, I need to:


1. added the 2 new lines in cxf.xml of client code below to specify 
username & password in UsernameToken profile



    <jaxws:client 
name="{http://www.example.org/contract/DoubleIt}DoubleItPort"; 
createdFromAPI="true">

        <jaxws:properties>

            <!-- added for UsernameToken -->
            <entry key="ws-security.username" value="joe" />
            <entry key="ws-security.password" value="joepassword" />
            ...
        </jaxws:properties>


    The client side also has an existing simple callback handler for 
keystore as



        public class ClientKeystorePasswordCallback implements 
CallbackHandler {


                private Map<String, String> passwords =
                new HashMap<String, String>();

                public ClientKeystorePasswordCallback() {
                passwords.put("myclientkey", "ckpass");
                }


                public void handle(Callback[] callbacks) throws 
IOException, UnsupportedCallbackException {

                for (int i = 0; i < callbacks.length; i++) {

                    WSPasswordCallback pc = 
(WSPasswordCallback)callbacks[i];


                    String pass = passwords.get(pc.getIdentifier());
                    if (pass != null) {
                    pc.setPassword(pass);
                    return;
                    }
                }
                }
        }



2. modify callback handler in Server side to add entry for username & 
password hard coded above, i.e.




    public class ServiceKeystorePasswordCallback implements 
CallbackHandler {


            private Map<String, String> passwords =
            new HashMap<String, String>();

            public ServiceKeystorePasswordCallback() {
            passwords.put("myservicekey", "skpass");

            passwords.put("joe", "joepassword");
            }


            public void handle(Callback[] callbacks) throws 
IOException, UnsupportedCallbackException {

            for (int i = 0; i < callbacks.length; i++) {

                WSPasswordCallback pc = 
(WSPasswordCallback)callbacks[i];


                String pass = passwords.get(pc.getIdentifier());
                if (pass != null) {
                pc.setPassword(pass);
                return;
                }
            }
            }
        }


Now my question is if I want to change the username & password of 
step 1 above programatically at runtime rather than hard coding it in 
xml,

what's the best practice to go about this?


Create another callback handler like ClientKeystorePasswordCallback 
is what I can think of.


Thanks,
Sam




























					Reply via email to